Hiring,
Greetings from Modern Agile Technologies.
Position: Cloud Service Provider Consultant
Location: Remote
Type: Long Term Contract
Hiring Manager''s note : While many of the candidates have ISSO experience, their backgrounds appear to be primarily on the customer/system owner side of FedRAMP rather than on the Cloud Service Provider (CSP) side. These are very different roles with significantly different responsibilities and skill sets.
For this position, we need someone who has direct, hands-on experience managing FedRAMP compliance from the CSP perspective, including:
- Creating, maintaining, and managing the System Security Plan (SSP).
- Leading and preparing for FedRAMP assessments and audits.
- Working directly with a 3PAO as the CSP representative throughout the audit lifecycle.
- Managing audit evidence collection, responses, and follow-up activities.
- Tracking and driving remediation efforts and POA&M activities to closure.
- Understanding the complete FedRAMP authorization process and ongoing continuous monitoring requirements.
- Coordinating across technical, operational, and compliance teams to ensure audit readiness.
The candidates submitted so far have generally worked in environments where they were consumers of a FedRAMP-authorized service and received compliance information from the CSP and 3PAO. That experience does not typically provide the depth of knowledge required to manage the compliance program from the CSP side.
We are specifically seeking individuals who have owned or significantly contributed to the compliance program for a cloud service provider and have firsthand experience running audits, developing SSP content, managing assessor interactions, and driving remediation efforts.
Going forward, please focus on candidates with demonstrated CSP-side FedRAMP experience, as that is the most critical qualification for this role.
Thank you for your partnership and support in finding the right candidate.